I wanted to talk a little more about the CIdO and how the Identity Management department should work a given organization.
First off, I do not believe that IT should be a part of the IdM department. In my view, the IT Department is more of an infrastructure group that supports all parts of the enterprise. I'm not dismissing IT here. While other departments conduct, support, organize and regulate the organization, it is IT that enables the organization. In today's world Information Technology is essential to all organizations in the 21st century.
That being said, I believe that the IdM department should include Human Resources, Information Security and Audit as well as the Physical Access Control group if the organization is so equipped.
I'm pretty sure that this combination will not work for the CIdO of every organization, and I don't even think that this is my final thought on what should be in the IdM department. However, I think that this helps to further define the organization.
Next time, I promise to start the process discussion...
No comments:
Post a Comment